4 matches found
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003054)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003054 advisory. The nestedvmxcheckvmptr function in arch/x86/kvm/vmx.c in the Linux kernel through 4.9.8 improperly emulates the VMXON instruction, which allows KVM L1 guest OS user...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001539)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001539 advisory. The nestedvmxcheckvmptr function in arch/x86/kvm/vmx.c in the Linux kernel through 4.9.8 improperly emulates the VMXON instruction, which allows KVM L1 guest OS user...
Kernel: KVM: leak of uninitialized stack contents to guest
An information leakage issue was found in the way Linux kernel's KVM hypervisor handled page fault exceptions while emulating instructions like VMXON, VMCLEAR, VMPTRLD, and VMWRITE with memory address as an operand. It occurs if the operand is a mmio address, as the returned exception object hold...
Kernel: kvm: page reference leakage in handle_vmon
Linux kernel built with the KVM visualization support CONFIGKVM, with nested visualizationnVMX feature enablednested=1, is vulnerable to host memory leakage issue. It could occur while emulating VMXON instruction in 'handlevmon'. An L1 guest user could use this flaw to leak host memory potentiall...